CVE-2008-0053 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	10 UNKNOWN	NETWORK	LOW		AV:N/AC:L/Au:N/C:C/I:C/A:C
mitre	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 94%

Vendor	Product	Version
apple	cups	𝑥 ≤ 1.3.5
apple	cups	1.1
apple	cups	1.1.1
apple	cups	1.1.2
apple	cups	1.1.3
apple	cups	1.1.4
apple	cups	1.1.5
apple	cups	1.1.5-1
apple	cups	1.1.5-2
apple	cups	1.1.6
apple	cups	1.1.6-1
apple	cups	1.1.6-2
apple	cups	1.1.6-3
apple	cups	1.1.7
apple	cups	1.1.8
apple	cups	1.1.9
apple	cups	1.1.9-1
apple	cups	1.1.10
apple	cups	1.1.10-1
apple	cups	1.1.11
apple	cups	1.1.12
apple	cups	1.1.13
apple	cups	1.1.14
apple	cups	1.1.15
apple	cups	1.1.16
apple	cups	1.1.17
apple	cups	1.1.18
apple	cups	1.1.19
apple	cups	1.1.19:rc1
apple	cups	1.1.19:rc2
apple	cups	1.1.19:rc3
apple	cups	1.1.19:rc4
apple	cups	1.1.19:rc5
apple	cups	1.1.20
apple	cups	1.1.20:rc1
apple	cups	1.1.20:rc2
apple	cups	1.1.20:rc3
apple	cups	1.1.20:rc4
apple	cups	1.1.20:rc5
apple	cups	1.1.20:rc6
apple	cups	1.1.21
apple	cups	1.1.21:rc1
apple	cups	1.1.21:rc2
apple	cups	1.1.22
apple	cups	1.1.22:rc1
apple	cups	1.1.22:rc2
apple	cups	1.1.23
apple	cups	1.1.23:rc1
apple	cups	1.2:b1
apple	cups	1.2:b2
apple	cups	1.2:rc1
apple	cups	1.2:rc2
apple	cups	1.2:rc3
apple	cups	1.2.0
apple	cups	1.2.1
apple	cups	1.2.2
apple	cups	1.2.3
apple	cups	1.2.4
apple	cups	1.2.5
apple	cups	1.2.6
apple	cups	1.2.7
apple	cups	1.2.8
apple	cups	1.2.9
apple	cups	1.2.10
apple	cups	1.2.11
apple	cups	1.2.12
apple	cups	1.3:b1
apple	cups	1.3:rc1
apple	cups	1.3:rc2
apple	cups	1.3.0
apple	cups	1.3.1
apple	cups	1.3.2
apple	cups	1.3.3
apple	cups	1.3.4
apple	cups	1.3.9
apple	cups	1.4.1

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

cups

bullseye	2.3.3op2-3+deb11u8 fixed
bullseye (security)	2.3.3op2-3+deb11u9 fixed
bookworm	2.4.2-3+deb12u7 fixed
bookworm (security)	2.4.2-3+deb12u8 fixed
sid	2.4.10-2 fixed
trixie	2.4.10-2 fixed

Ubuntu Releases

Ubuntu Product

Codename

cupsys

gutsy	Fixed 1.3.2-1ubuntu7.6 released
feisty	Fixed 1.2.8-0ubuntu8.3 released
edgy	Fixed 1.2.4-2ubuntu3.3 released
dapper	Fixed 1.2.2-0ubuntu0.6.06.8 released

Common Weakness Enumeration

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer
The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

References

http://docs.info.apple.com/article.html?artnum=307562

http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html

http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00003.html

http://secunia.com/advisories/29420

http://secunia.com/advisories/29573

http://secunia.com/advisories/29603

http://secunia.com/advisories/29630

http://secunia.com/advisories/29634

http://secunia.com/advisories/29655

http://secunia.com/advisories/29659

http://secunia.com/advisories/29750

http://secunia.com/advisories/31324

http://security.gentoo.org/glsa/glsa-200804-01.xml

http://www.debian.org/security/2008/dsa-1625

http://www.mandriva.com/security/advisories?name=MDVSA-2008:081

http://www.redhat.com/support/errata/RHSA-2008-0192.html

http://www.redhat.com/support/errata/RHSA-2008-0206.html

http://www.securityfocus.com/bid/28304

http://www.securityfocus.com/bid/28334

http://www.securitytracker.com/id?1019672

http://www.ubuntu.com/usn/usn-598-1

http://www.us-cert.gov/cas/techalerts/TA08-079A.html

http://www.vupen.com/english/advisories/2008/0924/references

https://exchange.xforce.ibmcloud.com/vulnerabilities/41272

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10356

https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00105.html

http://docs.info.apple.com/article.html?artnum=307562

http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html

http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00003.html

http://secunia.com/advisories/29420

http://secunia.com/advisories/29573

http://secunia.com/advisories/29603

http://secunia.com/advisories/29630

http://secunia.com/advisories/29634

http://secunia.com/advisories/29655

http://secunia.com/advisories/29659

http://secunia.com/advisories/29750

http://secunia.com/advisories/31324

http://security.gentoo.org/glsa/glsa-200804-01.xml

http://www.debian.org/security/2008/dsa-1625

http://www.mandriva.com/security/advisories?name=MDVSA-2008:081

http://www.redhat.com/support/errata/RHSA-2008-0192.html

http://www.redhat.com/support/errata/RHSA-2008-0206.html

http://www.securityfocus.com/bid/28304

http://www.securityfocus.com/bid/28334

http://www.securitytracker.com/id?1019672

http://www.ubuntu.com/usn/usn-598-1

http://www.us-cert.gov/cas/techalerts/TA08-079A.html

http://www.vupen.com/english/advisories/2008/0924/references

https://exchange.xforce.ibmcloud.com/vulnerabilities/41272

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10356

https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00105.html